We are seeking an experienced Red Team / Offensive Security Specialist to support ongoing security testing activities, with a primary focus on web-based exploitation and shell access validation. This is a long-term, fully remote role. Full-time availability is preferred; part-time candidates may be considered based on performance and consistency.
Key Responsibilities : Conduct authorized offensive security testing focused on obtaining validated web-based shell access. Identify and exploit security weaknesses, including:
• File upload vulnerabilities
• Remote Code Execution (RCE)
• LFI / RFI
• Server and application misconfigurations
• Weak permission settings
• Provide stable and verified access results for internal assessment.
• Document exploitation processes when required.
• Work independently while maintaining consistent and reliable output.
• Demonstrated hands-on experience in real-world offensive security engagements (beyond lab or CTF environments).
• Solid understanding of:
a. Web application security testing
b. File upload bypass techniques
c. Server misconfiguration analysis
d. Privilege escalation fundamentals
e. CMS and framework-specific vulnerabilities
• Ability to work independently with minimal supervision.
• Reliable internet connection and flexibility across time zones.
• Strong sense of responsibility and confidentiality.
• Performance Bonuses: Per shell obtained, based on shell value, difficulty, and quality • Some shells may carry significantly higher bonuses depending on their value and target quality